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EXPRESS MAIL LABEL NO: EL353512384US 



SYSTEM AND METHOD FOR MANAGING 
CONNECTIONS BETWEEN A CLIENT AND A SERVER 

Jack J. Smith; Richard T. Burright; W. Spencer Worley, III; 
Eoin B. MacDonell; John A. Vastano; and William T. Weatherford 

BACKGROUND OF THE INVENTION 

Field of the Invention 

This invention relates generally to network servers and more particularly to servers that 
host a large number of client connections. Even more particularly, the present invention relates 
to servers (e.g., internet web servers) which host a large number of relatively slow client 
connections. 

Description of the Background Art 

It is common for network file servers such as internet web servers to host a large 
number of relatively slow client connections. The large number of open connections places a 
substantial burden on the server central processing unit (CPU), just to manage the open 
connections. For example, managing the open connections on a loaded server can consume 30- 
40 % or more of the CPU's operating capacity. This burden substantially reduces the percentage 
of CPU cycles available to perform the primary function of the server, i.e., providing data to 
clients. 

The connection management burden on the server CPU degrades the performance of the 
server software routines and reduces the maximum number of client connections that can be open 
at one time. As a result, web-hosting companies must provide additional, redundant servers to 
serve an increased number of clients. The cost of acquiring and maintaining additional web 
servers is substantial. 

Proxy servers perform some client connection management functions, and are known in 
the art. However, it is well-known and commonly accepted in the art that such proxy servers 
must be housed separately from the server, and thus must communicate with the server over 
relatively slow, error prone network connections which the server must manage. See for 
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example, Ari Luotonen, Web Proxy Servers (Prentice Hall, 1997), which is incorporated herein 
by reference. 

What is needed, therefore, is a system and method for relieving the server CPU of the 
connection management burden, thus allowing the server to more efficiently host an increased 
5 number of clients. 

SUMMARY 

The present invention overcomes the problems associated with the prior art by providing 
a system and method for managing connections between a plurality of clients and a server. The 
1 0 invention facilitates off-loading the connection management burden from the host CPU to an 

adapter card interposed between the network and the host bus. 
C| The adapter card includes a network controller, a memory device, a processing unit, and a 

'if protocol adapter. The memory device provides storage for data and code. The code includes a 
Q proxy application that communicates with clients on the network via the network controller, and 
§35 communicates with the server via the protocol adapter, which is coupled directly to the server 
S bus. 

^ When executed by the processing unit, the proxy application manages client connections 

Ji by establishing network connections between the proxy application and clients via the network, 
S jP and by establishing bus connections between the proxy application and the server via the server 
#) bus. Additionally, the memory device provides data buffering, which allows many network 

connections to be open with clients, while a relatively few bus connections are open to the server. 
In a particular embodiment, the proxy accumulates client data in the buffers from the large 
number of slow client connections, and then submits the client data to the server over the fast bus 
connections. Conversely, the proxy receives server data via the fast bus connections, temporarily 
25 stores the server data, and then forwards the server data to the clients via the slow client 
connections. 

In a more particular embodiment, the code includes a communications protocol stack that 
is employed by the application proxy to communicate with the clients and the server. In an even 
more particular embodiment, the communications protocol stack is a Transmission Control 
30 Protocol/Internet Protocol (TCP/IP) stack. 
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In one embodiment, the server connections are opened only after the proxy determines 
that a complete client request has been received. The server connections are then closed after the 
proxy receives a response to the client request from the server. Optionally, a predetermined 
number of persistent server connections are opened at system start-up, and the proxy uses these 
persistent connections to communicate with the server. 

The proxy application optionally includes a number of application specific proxies, 
including but not limited to an HTTP proxy, a security proxy, and/or a pass-through proxy. In a 
particular embodiment, a master process module of the proxy discerns an application identifier 
(e.g., a well known port number) form the client data, and invokes one or more of the application 
specific proxies corresponding to the value of the identifier. 

BRIEF DESCRIPTION OF THE DRAWINGS 

The present invention is described with reference to the following drawings, wherein like 
reference numbers denote substantially similar elements: 

FIG. 1 is a block diagram of a server and an adapter card according to the present 
invention; 

FIG. 2 is a block diagram of the working memory of the adapter card of FIG. 1, showing 
the proxy module in greater detail; 

FIG. 3 is a block diagram showing the application proxies module of FIG. 2 in greater 

detail; 

FIG. 4 is a block diagram showing exemplary data structures for at least some of the data 
stored in the data buffer of FIG. 2; 

FIG. 5 is a flow chart summarizing one method for managing connections between a 
client and a server according to the present invention; 

FIG. 6 is a flow chart summarizing one method for performing the first step of the 
method of FIG. 5; 

FIG. 7 is a flow chart summarizing one method for performing the second step of the 
method of FIG. 5; 

FIG. 8 is a flow chart summarizing one method for performing the third step of the 
method of FIG. 5; 
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FIG. 9 is a flow chart summarizing one method for performing the fourth step of the 
method of FIG. 5; 

FIG. 10 is a flow chart summarizing one method for performing the fifth step of the 
method of FIG. 5; and 

5 FIG. 1 1 is a flow chart summarizing one method for performing the sixth step of the 

method of FIG. 5. 

DETAILED DESCRIPTION 
The present invention overcomes the problems associated with the prior art, by off- 
10 loading much of the connection management burden from the server's main processor with a 
proxy application run on a different processing unit. In the following description, numerous 
specific details are set forth (e.g., particular communications protocols, particular software and 
^5 data structures, etc.) in order to provide a thorough understanding of the invention. Those skilled 
Q in the art will recognize, however, that the invention may be practiced apart from these specific 
W5 details. In other instances, details of well known network components and programming 
5 practices (e.g., establishing connections via a communications protocol stack) have been omitted, 
s so as not to unnecessarily obscure the present invention. 

% FIG. 1 is a block diagram showing a system 100 coupled to an internetwork 102 via a 

f 2 physical network media 104. In a particular implementation, system 100 is an internet web 
J20 server, and internetwork 102 is the Internet, but those skilled in the art will recognize that the 
^ present invention may be implemented in any type of network server. 

System 100 includes a file server (e.g., an HTTP web server) 106 and an adapter card 
108. File server 106 provides data to and receives data from clients 109(l-n) on internetwork 
102, via adapter card 108. Adapter card 108 establishes and maintains network connections 
25 between clients 109(l-n) and adapter card 108, and establishes bus connections between server 
106 and adapter card 108. Thus connected, adapter card 108 receives communications from 
clients 109(l-n) on behalf of server 106, forwards the communications to server 106, receives 
responses from server 106 on behalf of clients 109, and forwards the responses to clients 109. 
Server 106 includes non-volatile memory 110, working memory 112, server mass data 
30 storage 1 14, a processing unit 1 16, and one or more user input/output (I/O) devices 1 1 8, all 
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intercommunicating via a server bus 120 (e.g., PCI bus). Non-volatile memory 1 10 (e.g., read- 
only memory and/or one or more hard-disk drives) provides storage for data and code which is 
retained even when server 106 is powered down. Working memory 1 12 (e.g., random access 
memory) provides operational memory for server 106, and includes executable code (e.g., an 
5 operating system) which is loaded into working memory 1 12 during start-up. Among other 
programs, working memory 1 12 includes server applications 121 and a communication protocol 
stack 122. Server applications 121 include network software applications (e.g., FTP, HTTP, etc.) 
which allow server 106 to function as a network server. Communications protocol stack 122 is a 
standard protocol stack (e.g., TCP/IP) which facilitates communication with other machines over 
10 an internetwork. Standard protocol stacks are well known in the art. See, for example, W. 

Richard Stevens, TCP/IP Illustrated, Vol 1 (Addison- Wesley, 1994), which is incorporated 
ri herein by reference. Server mass data storage 114 provides data storage (e.g., one or more hard 
If disk drives) for data (e.g., HTML pages, graphics files, etc.), which the server provides to clients 
Q 1 09(1 -n) attached to internetwork 1 02. Processing unit 1 1 6 executes the instructions in working 
ffo memory 1 12 to cause server 106 to carry out its primary function (e.g., providing data to and 
5f receiving data from clients). I/O devices 118 typically include a keyboard, a monitor, and/or 
£ such other devices which facilitate user interaction with server 106. Each of the above described 
y@ components is typically found in a network server such as an internet web server. 
% Adapter card 108 includes non-volatile memory 123, working memory 124, a processing 

*§0 unit 126, a bus protocol bridge 128, and a network controller 129, all intercommunicating via an 
adapter bus 130. Non-volatile memory 123 provides storage for data and code (e.g., boot code) 
which is retained even when adapter 108 is powered down. Processing unit 126 imparts 
functionality to adapter card 108 by executing the code present in working memory 124. Bus 
protocol bridge 128 provides an interface between adapter bus 130 and server bus 120, and 
25 network controller 129 provides an interface between adapter bus 130 and network media 104. 

Working memory 124 provides operational memory for adapter 108, and includes a proxy 
application 132 and a communication protocol stack 134. Proxy 132 and protocol stack 134 are 
loaded from non-volatile memory 123 into working memory 124 at start-up. Optionally, proxy 
132 and protocol stack 134 can be loaded from one or more alternative sources, including but not 
30 limited to non-volatile memory 1 10 or server mass data storage 1 14 of server 106. Proxy 132, 
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when executed by processing unit 126, establishes and manages the above described connections 
between adapter 108 and server 106 and between adapter 108 and clients 109. 

In this particular embodiment of the invention, protocol stacks 122 and 134 are standard 
(e.g., TCP/IP) protocol stacks. Employing a standard communication protocol stack in adapter 
5 108 facilitates the use of the standard communication software (e.g., protocol stack 122) already 
present in the vast majority of network servers. Those skilled in the art will recognize, however, 
that this particular element (as well as other described elements, even if not explicitly stated) is 
not an essential element of the present invention. For example, the present invention may be 
practiced with custom communication software (e.g., direct communication between server 
10 applications 121 and either protocol stack 134 or proxy 132) in both server 106 and adapter 108. 

Further, in particular embodiments of the invention, this element may be omitted by providing 
q proxy 132 with direct access to the resources (e.g., server mass data storage 1 14) of server 106. 
'% Adapter card 108 is coupled to server 106 via a bus connection 136 between bus protocol 

O bridge 126 and server bus 120. In this particular embodiment, bus connection 136 is a typical 
Efe5 bus expansion slot, for example a PCI slot. Those skilled in the art will recognize, however, that 
S the present invention may be implemented with other types of bus connections, including but not 
limited to an ISA slot, a USB port, a serial port, or a parallel port. Bus connection 136 facilitates 
high speed, large packet size, relatively error free (as compared to network connections) 
j£ communication between proxy 132 and server applications 121, greatly reducing the connection 
#) management burden on processing unit 1 16 of server 106. In summary, proxy 132 (running on 
processing unit 116) communicates with clients 109 over slow, error prone network connections, 
and then communicates with server applications 121 on behalf of clients 109 over high speed bus 
connection 136. 

FIG. 2 is a block diagram of working memory 124 showing proxy 132 and protocol stack 
25 134 in greater detail Those skilled in the art will recognize that while the various software 

modules of proxy 132 are shown as interconnected functional blocks, the software modules are 
actually blocks of executable code stored in working memory 124 that can communicate with 
one another when executed by processing unit 126 (FIG. 1). 

Proxy 132 includes a master process module 202, a plurality of client process modules 
30 204(1 -n), a data buffer 206, and an application proxies module 208. Master process module 
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provides overall control and coordination of the various modules of proxy 132. Responsive to a 
connection request from a client 109 on internetwork 102 (FIG. 1) master process 202 accepts the 
connection request, initializes a data structure for that client connection in data buffer 206, 
initiates a new, separate client connection process 204 to handle the connection, and then notifies 
5 application proxies 208 that the particular client connection has been established. Each client 
process 204 handles one such client connection. Application proxies 208 establish and manage 
bus connections with server 106. Data buffer 206 provides storage for data received from clients 
109 and destined for server 106, for data received from server 106 and destined for clients 109, 
and for connection data relating to established client and/or server connections. 
10 Communications protocol stack 134 is a TCP/IP stack including a sockets layer 210, a 

TCP layer 212, an IP layer 214, and a device layer including a network driver 216 and a server 
Q bus driver 218. The functionality of each of the individual layers of protocol stack 1 34 is well 
IK known in the art, and will not, therefore, be discussed in detail herein. Connections between the 
Q various modules of proxy 132 and server applications 121 are established through sockets layer 
§15 2 1 0, TCP layer 2 1 2, IP layer 2 1 4 and server bus driver 218. Connections between the various 
m modules of proxy 132 are established with clients 109 through sockets layer 210, TCP layer 212, 

IP layer 214 and network driver 216. 
y| FIG. 3 is a block diagram showing application proxies module 208 to include a plurality 

5 5 of application specific proxies 208(1 -f), including a hypertext transfer protocol (HTTP) proxy 
f 0 208(1), a pass-through proxy 208(2), a security proxy 208(3), and an "other" proxy 208(f). 
Master process 202 notifies application proxies 208 of an established client connection, by 
configuring one or more of the application specific proxies 208(1 -f) to service the client 
connection. One means of configuring an application specific proxy (e.g., HTTP proxy 208(1)) 
is to enter a client process identifier in the processing queue of the application specific proxy. 
25 Master process 202 determines which of the application specific proxies to implement for 

a particular client process from the port number included in the client connection request. It is 
standard practice to use well known port numbers to identify particular network applications 
and/or protocols (e.g., file transfer protocol (FTP), HTTP, etc.). For example, port number 80 
corresponds to an HTTP connection request. Master process 202 therefore notifies HTTP proxy 
30 208(1) of all client process' 204 initiated in response to a connection request indicating port 80. 
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HTTP proxy 208(1) monitors each of the client processes of which it is notified. When 
HTTP proxy 208(1) determines that a complete HTTP request is received and stored in data 
buffer 206 by a client process (e.g., 204(n)), HTTP proxy 208(1) opens a connection to the 
server, transmits the request to the server, receives a response from the server, stores the response 
5 in data buffer 206 and then closes the server connection. The server response is then transmitted 
to client 109(n) by the associated client process 204(n). 

When master process 202 receives a connection request with a port number that does not 
correspond to any of the other application specific proxies, master process 202 notifies pass- 
through proxy 208(2). Pass-through proxy 208(2) simply opens a server connection, transfers the 
10 data received from the associated client process 204 from data buffer 206 to server 106, and then 

closes the server connection. 
% Master process 202 may notify some application specific proxies of all client connections, 

£ regardless of the associated port number. For example, security proxy 208(3) is operative to 
Ul screen all client connection requests by, for example, terminating any client process initiated in 
S5 response to a connection request lacking some indicia of authorization, prior to implementing 
^ one of the other application specific proxies. 

O "Other" proxy 208(f) is included in FIG. 3 to show that application proxies 208 can 

r§ include any currently known or future developed proxy that is desirable for a particular 
t; application, including but not limited to, caching HTTP proxy applications, electronic mail 
ylO applications, and file transfer applications. 

FIG. 4 shows an example of client data structures 402(1 -n) and proxy data structures 
404(1 -f), implemented in data buffer 206 to effect the transfer of data through proxy 132. Master 
process 202 creates and initializes one client data structure 402 for each client process 204, and 
one proxy data structure 404 for each application specific proxy in application proxies 208. 
25 Each client data structure 402 includes a client socket 406, a server socket 408, a 

connection state 410, an input queue 412, an output queue 414, and application proxy data 416. 
For each client connection (e.g., connection (n)), client socket 406(n) and server socket 408(n) 
each include the IP address and port number of the client 109(n) and server 106, respectively, 
thus uniquely associating each client data structure 402(n) with a single one of client processes 
30 204(n). Connection state 41 0(n) indicates the current status (e.g., complete request received, 
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response received, etc.) of the connection (n). Input queue 412(n) is used to store and 
accumulate data received from client 109(n) by the client process 204(n) associated with the 
particular data structure 402(n). Output queue 414(n) is used to store data from application 
proxies 208 which is to be forwarded to client 109(n) by client process 204(n). Application 
5 proxy data 416(n) is provided to store any information specific to a particular application proxy 
(e.g., flags, etc.). 

Each proxy data structure(e.g., 404(f)) includes a client queue 418(f), a client 
ready queue 420(f), and a read pending queue 422(f). Client queue 41 8(f) includes a client 
process descriptor (e.g., a pointer to a related client data structure 402) for each client process 
1 0 204 associated with the particular application proxy (f) to which the proxy data structure 404(f) 
corresponds. Client ready queue 420(f) includes a client process descriptor for each client data 
q structure 402 that has data in its input queue 412 that is ready to be processed (e.g., transferred to 
"% server 106) by the associated application proxy (f). Read pending queue 422(f) includes the 
Q client process descriptor for each client process that is awaiting a response from server 106. 
55 Those skilled in the art will understand that the above described client data structure 402 

^ and proxy data structure 404 are exemplary in nature, and that other data structures may be 
L employed with the present invention. The configuration of such alternate data structures will 
%Q necessarily depend on the function and structure of the particular application specific proxies that 
are employed. 

J§0 FIG. 5 is a flowchart summarizing a particular method 500 of managing connections 

between clients and a server according to the present invention. In a first step 502 proxy 132 
establishes a network connection with a client 109, and then in a second step 504 receives a 
communication (e.g., an HTTP request) from client 109 via the network connection. Next, in a 
third step 506, proxy 132 establishes a bus connection with server 106, and then in a fourth step 
25 508 forwards the received client communication to server 106 via the bus connection. Then, in a 
fifth step 510, proxy 132 receives a response (e.g., HTML data) to the client communication 
from server 106, and in sixth step 512 transmits the response to client 109 via the client network 
connection. Finally, in a seventh step 514, proxy 132 determines whether there is a signal to 
terminate (e.g., shut down), and if there is a signal to terminate, then method 500 ends. If there is 
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no signal to terminate in seventh step 514, then method 500 returns to first step 502, to establish 

a network connection with another client 109. 

FIG. 6 is a flow chart summarizing one particular method 600 of performing first step 

502 (establishing a network connection with a client) of method 500. In a first step, master 
5 process 202 connects to internetwork 102. Then in a second step 604 master process 202 listens 

to the traffic on internetwork 102 to determine if there is a connection request from a client 109. 

If there is no client connection request, then method 600 ends. If there is a connection request 

from a client 109(n), then in a third step 606, master process 202 accepts the connection request 

form client 109(n), initiates a client process 204(n) to handle the connection, and initializes a 
10 client data structure 402(n) in data buffer 206. Next, in a fourth step 608, master process 202 

discerns a proxy application identifier (e.g., a port number) from the client connection request 
O and notifies one or more of application proxies 208(1 -f), depending on the value of the identifier, 
J by writing the client process descriptor (e.g., pointer to client data structure 402(n)) into the client 

queues 418 of the respective proxy data structures 404. Finally, in a fifth step 610, master 
05 process 202 determines whether the maximum allowed number of client connections are open. If 
m the maximum number of client connections are open, then method 600 ends. If the maximum 
L number of client connections are not open, then method 600 returns to second step 604, to listen 
€1 for another connection request. 

4* FIG. 7 is a flow chart summarizing a method 700 of performing second step 504 

l f 0 (receiving a communication from a client 109) of method 500. In a first step 702, master process 
202 determines whether there are any client processes 204 to be processed to receive data. If 
master process 202 has already processed all of client processes 204(1 -n), then method 700 ends. 
If not, then in a second step 704, master process 202 calls the first client process 204(1). Then, in 
a third step 706, client process 204(1) checks its client connection (e.g., the TCP buffer) to 

25 determine whether there is any data coming in from client 109(1). If there is no incoming data 
for the first client process 204(1), then method 700 returns to first step 702 to process any 
remaining client processes 204(2-n). If, in third step 706, client process 204(1) determines that 
there is incoming data from client 109(1), then in a fourth step 708, client process 204(1) checks 
client data structure 402(1) to determine if input queue 412(1) is available to receive client data. 

30 If input queue 412(1) is not available, then method 700 returns to first step 702 to process any 
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remaining client processes 204(2-n). If in fourth step 708, client process 204(1) determines that 
input queue 412(1) is available to receive data, then in a fifth step 710, client process 204(1) 
transfers the incoming client data into input queue 412(1). Then, in a sixth step 712, client 
process 204(1) determines whether the data accumulated in input queue constitutes a complete 
5 request (i.e., data ready to be transferred to server 1 06, for example a complete HTTP request). 
If the data does not constitute a complete request, then method 700 returns to first step 702 to 
process any remaining client processes 204(2-n). If, however, client process 204(1) determines 
in sixth step 712 that the data in input queue 412(1) constitutes a complete request, then, in a 
seventh step 714, client process notifies proxy applications 208 that there is a complete request 
10 by, for example, setting connection state 410(1) to so indicate. Then, method 700 returns to first 

step 702 to determine whether there are any more client processes 204(2-n) to process, 
p FIG. 8 is a flow chart summarizing a method 800 of performing third step 506 

% (establishing a bus connection with server 106) of method 500. In a first step 802, a first one of 
l 5 application proxies 208(1) retrieves the first client descriptor from client queue 418(1) of its 
i5 proxy data structure 404(1). Then in a second step 804, proxy 208(1) checks the connection state 
fS 412 of the client data structure 402 identified by the first client descriptor to determine if the first 
client has a complete request in its input queue 412. If connection state 412 indicates a complete 
H request, then in a third step 806, proxy 208(1) adds the client descriptor to its client ready queue 
'|S 420(1). Next, in a fourth step 808, proxy 208(1) determines whether the maximum number of 
^§0 connections to server 106 are open. If the maximum number of server connections are already 
open, then method 800 ends. If the maximum number of server connections are not already 
opened, then in a fifth step 810, proxy 208(1) opens a bus connection with server 106 and writes 
connection information in server socket 408 of the associated client data structure 402. Next, in 
a sixth step 812, proxy 208(1) determines whether it has checked the last client descriptor in its 
25 client queue 41 8(1). If the last descriptor has been checked, then method 800 ends. Otherwise, 
method 800 returns to first step 802 to retrieve the next descriptor in client queue 418(1). If, in 
second step 804, proxy 208(1) determines that a complete client request has not been received, 
then method 800 proceeds directly to sixth step 812. Once all of the descriptors in client queue 
418(1) of proxy data structure 404(1) have been processed, method 800, or a similar method, is 
30 repeated for each of the other application proxies 208(2-f). 
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FIG. 9 is a flow chart summarizing a method 900 of performing fourth step 508 
(forwarding a client communication to server 106) of method 500. In a first step 902, proxy 
208(1) retrieves the first client descriptor from the client ready queue 420(1) of its proxy data 
structure 404(1). Then, in a second step 904, proxy 208(1) checks the server socket 408 of the 
5 first client 5 s data structure 402 to determine whether a server connection is open. If a server 
connection is open, then in a third step 906, proxy 208(1) transfers the client data (e.g., HTTP 
request) from the client input queue 412 to server 106 over the open server connection. Next, in a 
fourth step 908, proxy 208(1) moves the client descriptor from the client ready queue 420(1) to 
the read pending queue 422(1). Then in a fifth step 910, proxy 208(1) determines whether the 
10 last client in the client ready queue 420(1) has been checked. If not, then method 900 returns to 

first step 902 to check the next client in client ready queue 420(1). If the last client has been 
f3 checked, then method 900 ends. If, in second step 904, proxy 208(1) determines that there is no 
server connection open for a particular client, then method 900 proceeds directly to fifth step 9 1 0 
Q to determine whether the last client in the client ready queue 420(1) has been checked. Once all 
fifS of the descriptors in client ready queue 420(1) of proxy data structure 404(1) have been 
i2 processed, method 900, or a similar method, is repeated for each of the other application proxies 
^ 208(2-f). 

yg FIG. 10 is a flow chart summarizing a method 1000 of performing fifth step 510 (receive 

% a response from server 106) of method 500. In a first step 1002, proxy 208(1) determines 
#0 whether read pending queue 422(1) is empty, and if so method 1000 ends. If read pending queue 
422(1) is not empty, then in a second step 1004 proxy 208(1) retrieves the first client descriptor 
from the read pending queue. Next, in a third step 1006, proxy 208(1) checks the open server 
connection identified in server socket 408 of the client data structure 402 identified by the first 
client descriptor, to determine whether there is any incoming server data (i.e., a response to the 
25 client request) on that connection. If there is no incoming server data on that connection, then 
method 1000 returns to second step 1004 to check the next client in the read pending queue. If 
there is incoming server data, then in a fourth step 1008, proxy 208(1) checks to determine 
whether output queue 414 of the client data structure 402 identified by the client descriptor is 
available. If output queue 414 is not available, then method 1000 returns to second step 1004 to 
30 check the next client descriptor in read pending queue 422(1). If output queue 414 is available, 
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then, in a fifth step 1010, proxy 208(1) moves the incoming server data into the output queue 414 
of client data structure 402. Next, in a sixth step 1012, proxy 208(1) determines whether the 
server data includes an "end of file" indicator. If not, then in a seventh step 1014, proxy 208(1) 
checks to determine whether the last client descriptor in read pending queue 422(1) has been 
5 processed. If so, method 1000 ends. If not, method 1000 returns to step 1004 to read the next 
client descriptor from read pending queue 422(1). 

If, in sixth step 1012, proxy 208(1) determines that the server data includes an end-of-file 
indicator, then method 1000 proceeds to an eighth step 1016, wherein proxy 208(1) removes the 
client descriptor from the read pending queue, and then in a ninth step 1018 closes the server 
10 connection. After ninth step 1018, method 1000 returns to seventh step 1014. Once all of the 
descriptors in read pending queue 422(1) of proxy data structure 404(1) have been processed, 
r 3 method 1 000, or a similar method, is repeated for each of the other application proxies 208(2-f). 
^ FIG. 1 1 is a flow chart summarizing a method 1 100 of performing sixth step 512 

Q (transmitting data to clients 109) of method 500. In a first step 1 102, master process 202 calls 
(JjS first client process 204(1). Then, in a second step 1 104, first client process 204(1) determines 
whether there is any data in output queue 414(1) of client data structure 402(1). If there is no 
s _ data in output queue 4 1 4(1 ), then method 1 1 00 returns to first step 1 1 02 where master process 
5 202 calls the next of the remaining client processes 204(2-n). If, however, in second step 1 104, 
v i client process 204(1) determines that there is data in output queue 414(1), then in a third step 
^§0 1 106, client process 204(1) determines whether the client network connection is ready to receive 
data. If the client network connection is not ready, then method 1 1 00 returns to first step 1 1 02. 
If the client network connection is ready, then in a fourth step 1 108, client process 204(1) moves 
at least a portion of the data in output queue 414(1) to the client connection (e.g., the TCP output 
buffer). Next, in a fifth step 1110, master process 202 determines whether the last client process 
25 has been called. If so, method 1 100 ends. If not, method 1 100 returns to first step 1 102 to call 
the next of the remaining client processes 203(2-n). 

The description of particular embodiments of the present invention is now complete. 
Many of the described features may be substituted, altered or omitted without departing from the 
scope of the invention. For example, the operative components of adapter 108 (e.g., processing 
30 unit 126 and proxy 1 32) can be incorporated directly into a server instead of being provided in a 
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removable adapter card. Further, alternate data structures may be substituted for the exemplary 
data structures provided. Additionally, the particular orders of methods and routines disclosed 
herein are not considered to be essential elements of the present invention. As yet another 
example, master process 202 can be configured to open a predetermined number of persistent bus 
connections with server 106 at start-up, and manage the use of those connections by application 
proxies 208(1 -f), thus eliminating the need for server 106 to repetitively open and close the bus 
connections. These and other deviations from the particular embodiments shown will be 
apparent to those skilled in the art, particularly in view of the foregoing disclosure. 
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We claim: 



1 1 . A method for managing connections between at least one client and a server, said 

2 method comprising: 

3 establishing a network connection with one of said clients via a network ; 

4 receiving a communication from said client via said network connection; 

5 establishing a bus connection with said server via an internal bus of said server; and 

6 forwarding said client communication to said server via said bus connection. 

1 2. A method according to Claim 1, wherein said step of receiving a communication 

2 from said client includes storing said communication in a buffer. 

^1 3. A method according to Claim 2, wherein said step of storing said communication in a 

02 buffer includes accumulating one or more separate transmissions from said client in said buffer. 

if 1 4. A method according to Claim 3, wherein said step of establishing a bus connection 

s 2 with said server includes waiting until a complete client request is accumulated in said buffer 

y|3 before establishing said bus connection with said server. 

5. A method according to Claim 4, further comprising: 

"2 receiving a response to said client communication from said server via said bus 

3 connection; and 

4 forwarding said response to said client via said network connection. 

1 6. A method according to Claim 5, wherein said step of receiving said response from said 

2 server includes storing said response in a buffer. 

1 7. A method according to Claim 6, wherein said step of receiving said response from said 

2 server includes terminating said bus connection after said response is received. 
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1 8. A method according to Claim 1 , further comprising: 

2 receiving a response to said client communication from said server via said bus 

3 connection; and 

4 forwarding said response to said client via said network connection. 

1 9. A method according to Claim 8, wherein said step of receiving said response from said 

2 server includes storing said response in a buffer. 

1 10. A method according to Claim 9, wherein said step of receiving said response from 

2 said server includes terminating said bus connection after said response is received. 

^1 1 1 . A method according to Claim 8, wherein said client communication includes an 

m HTTP request. 

^1 12. A method according to Claim 1 1, wherein said response from said server includes an 

02 HTML page. 

1 13. A method according to Claim 1, wherein said step of establishing a network 

112 connection with a client includes establishing a separate network connection with each of a 

i|3 plurality of clients via said network. 

1 14. A method according to Claim 13, wherein said step of establishing said bus 

2 connection with said server includes establishing a plurality of connections with said server via 

3 said internal bus of said server. 

1 1 5 . A method according to Claim 1 4, wherein the maximum number of simultaneous 

2 client connections exceeds the maximum number of simultaneous server connections. 

1 1 6. A method according to Claim 1 , further comprising performing a security operation 

2 on said client communication prior to forwarding said client communication to said server. 
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1 17. A method according to Claim 1, wherein: 

2 said step of receiving said client communication includes discerning an application 

3 identifier from said client communication; and 

4 said step of forwarding said client communication to said server includes invoking one of 

5 a plurality of proxy applications based on said application identifier. 

1 1 8. A method according to Claim 17, wherein said application identifier is the 

2 connection port number. 

1 19. A method according to Claim 1, wherein said step of receiving said client 
, "S2 communication includes receiving at least a portion of an HTTP request. 

ml 20. A computer readable medium having code embodied therein for causing an 

jg(2 electronic device to perform the steps of Claim 1. 

Ql 21 . A computer readable medium having code embodied therein for causing an 

m2 electronic device to perform the steps of Claim 2. 

-J31 22. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 3. 

1 23. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 4. 

1 24. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 5. 

1 25. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 6. 
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1 26. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 7. 

1 27. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 8. 

1 28. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 9. 

1 29. A computer readable medium having code embodied therein for causing an 
£32 electronic device to perform the steps of Claim 10. 

jfjl 30. A computer readable medium having code embodied therein for causing an 

P2 electronic device to perform the steps of Claim 1 1 . 

JU1 3 1 . A computer readable medium having code embodied therein for causing an 

^2 electronic device to perform the steps of Claim 12. 

32. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 13. 

1 33. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 14. 

1 34. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 15. 

1 35. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 16. 
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1 36. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 17. 

1 37. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 18. 

1 38. A computer readable medium having code embodied therein for causing an 

2 electronic device to perform the steps of Claim 1 9. 

1 39. An adapter card for coupling a server with an internal bus to a network, said adapter 

"S2 card comprising: 

HP3 a network controller for communicating with clients on said network; 

y|4 a memory device for storing data and code, said code including a proxy application; 

Jf3 a processing unit coupled to said memory device for executing said code; and 

Gfe a protocol adapter coupled to said processing unit, and adapted to couple to said internal 

Q7 bus, for communicating with said server. 

"H 40. An adapter card according to Claim 39, wherein said code further comprises a 

yg2 communication protocol stack. 

1 41 . An adapter according to Claim 40, wherein said communication protocol stack 

2 comprises a standard TCP/IP protocol stack. 

1 42. An adapter card according to Claim 39, wherein said proxy application includes a 

2 security proxy. 

1 43. An adapter card according to Claim 39, wherein said proxy application includes a 

2 pass-through proxy. 
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44. An adapter card according to Claim 39, wherein said proxy application includes an 
HTTP proxy. 



1 45. An adapter card according to Claim 39, further comprising a data buffer for storing 

2 data received from said clients. 

1 46. An adapter card according to Claim 39, wherein said proxy application includes a 

2 master process module responsive to a connection request received from one of said clients, and 

3 operative to establish a connection with said client and to initiate a new client process module to 

4 maintain said established connection. 

^1 47. An adapter card according to Claim 46, wherein said master process module is 

*J2 further operative to notify said proxy application of said established connection. 
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ABSTRACT OF THE DISCLOSURE 
An adapter card for managing connections between clients and a network server off-loads 
the connection management burden from the server. The adapter card includes a memory with 
an embedded proxy application and a communication protocol stack, a processing unit for 
executing the application code, a network controller for interfacing with an internetwork, and a 
bus protocol bridge for interfacing with the internal bus of the network server. The proxy 
application receives client requests on behalf of the server over relatively slow and unreliable 
network connections, and submits the requests to the server over fast, reliable bus connections. 
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